Posted 29 April 2015 - 11:43 AM
I'm newly registered here, and it's due to this! My laptop has been infected and encrypted. Trying to save what I can. The cryptolocker has been stopped, I believe, after installing new anti-malware from Malwarebytes (also Spyhunter for which I think I might find some grief according to some things I've read). I tried the tool created by Cisco's Talos group without any luck (currently searching for the key.dat file, might get lucky). What I think I have to do is restore the computer to its original state, refresh or recover. Sadly this will mean losing recently aquired photos that I did not back up (of my dad and my son who passed recently). If I cannot save anything, should I restart the computer to its original state (first purchased)? As for anti malware and such, do I purchase the full version of them before or after restart? All the "shadow volume files" I believe they're called were deleted during encryption. Any help or direction would be appreciated. I got this cryptolocker on April 27, 2015 at 6pm downloading coloring pages for my younger sons, a "NickJr" site, or so I believed it was.